||As computing services are increasingly cloud-based, corporations are investing in cloud-based security measures. The Security-as-a-Service (SECaaS) paradigm allows customers to outsource security to the cloud, through the payment of a subscription fee. However, no security system is bulletproof, and even one successful attack can result in the loss of data and revenue worth millions of dollars. To guard against this eventuality, customers may also purchase cyber insurance to receive recompense in the case of loss. To achieve cost effectiveness, it is necessary to balance provisioning of security and insurance, even when future costs and risks are uncertain. This presentation introduces a stochastic optimization model to optimally provision security and insurance services in the cloud. Since the model is a mixed integer problem, we also introduce a partial Lagrange multiplier algorithm that takes advantage of the total unimodularity property to find the solution in polynomial time. We show the effectiveness of these techniques using numerical results based on real attack data to demonstrate a realistic testing environment, and find that security and insurance are interdependent.
||Dusit Niyato is currently an associate professor in the School of Computer Science and Engineering, at the Nanyang Technological University, Singapore. He received B.E. from King MongkukÃ¢â‚¬â„¢s Institute of Technology Ladkrabang (KMITL), Thailand in 1999 and Ph.D. in Electrical and Computer Engineering from the University of Manitoba, Canada in 2008. He has published more than 300 technical papers in the area of wireless and mobile networking and authored the books “Resource Management in Multi-Tier Cellular Wireless Networks”, “Game Theory in Wireless and Communication Networks: Theory, Models, and Applications” and “Dynamic Spectrum Access and Management in Cognitive Radio Networks”. He won the Best Young Researcher Award of IEEE Communications Society (ComSoc) Asia Pacific (AP) and The 2011 IEEE Communications Society Fred W. Ellersick Prize Paper Award. He is a distinguished lecturer of the IEEE Communications Society. His works have received more than 13,000 citations (Google Scholar).Currently, he serves as an area editor of IEEE Transactions on Wireless Communications (Radio Management and Multiple Access), an associate editor of IEEE Transactions on Communications, an editor of IEEE Communications Surveys and Tutorials (COMST), and IEEE Transactions on Cognitive Communications and Networking (TCCN). He was a guest editor of IEEE Journal on Selected Areas on Communications, special issue on Cognitive Radio Networking & Communications, and Recent Advances in Heterogeneous Cellular Networks. He is a Fellow of IEEE.